Re: [CentOS-virt] current state of kvm for centos-5
Hi Farkas, On Thu, Feb 5, 2009 at 3:41 PM, Farkas Levente lfar...@lfarkas.org wrote: after a long time it seems the current packages which needed for kvm on centos-5 host seems to working (ie. worth to change). my repo: http://www.lfarkas.org/linux/packages/centos/5/SRPMS/ contains the current set of rpms what we use (about a week): On how many machines / hardware configurations have you tested this KVM version? Since there does not seem to be much movement here upstream, I think it would be useful to test a new batch of KVM packages. Of course, any packages that upgrade CentOS packages can only potentially be in CentOS-plus. Take care, Daniel ___ CentOS-virt mailing list CentOS-virt@centos.org http://lists.centos.org/mailman/listinfo/centos-virt
Re: [CentOS-virt] xen 3.2
On Mon, Jul 14, 2008 at 5:04 PM, Justin Lim [EMAIL PROTECTED] wrote: Any ideal when 3.2 xen will be avail for centos? When the upstream distribution provides it. I am not sure if it is on their roadmap. Of course, you could also use Xen 3.2 from XenSource, but that's not supported here. Take care, Daniel ___ CentOS-virt mailing list CentOS-virt@centos.org http://lists.centos.org/mailman/listinfo/centos-virt
Re: [CentOS-virt] Need kernel-debuginfo-2.6.9-67.0.20.EL.x86_64.rpm
Hi, On Mon, Jul 14, 2008 at 10:49 PM, Jerry Amundson [EMAIL PROTECTED] wrote: Short story: Would it be possible to get kernel-debuginfo-2.6.9-67.0.20.EL.x86_64.rpm on di.c.o? I have a need to run crash on a 2.6.9-67.0.20.ELxenU xm dump-core. Debuginfo packages are available from: http://debuginfo.centos.org/ Take care, Daniel ___ CentOS-virt mailing list CentOS-virt@centos.org http://lists.centos.org/mailman/listinfo/centos-virt
Re: [CentOS-docs] Wiki Front Page.
On Sat, Jul 5, 2008 at 7:38 PM, Alan Bartlett [EMAIL PROTECTED] wrote: Whilst running my critical eye over the new front page of the wiki I noticed, in the first light-blue box: CentOS Planet is alive: Stay in touch with the CentOS community, take a look at CentOS Planet Planet CentOS or CentOS Planet, that is the question. D'oh. It's Planet CentOS, just like all other Planet \w+ sites. I'll fix this ;). Take care, Daniel ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
Re: [CentOS-docs] To have a new acces
What? ;) On Tue, Jun 24, 2008 at 6:55 PM, aymeric derbois [EMAIL PROTECTED] wrote: I have finished to translate the frontpage of the FAQ. Now I need a acces for translate this page http://wiki.centos.org/fr/FAQ/CentOS5 Since we have recursive permissions, you should be able to edit that page if you can edit http://wiki.centos.org/fr/FAQ. What happens if you use this URL (so, with '?action=edit' appended to the URL): http://wiki.centos.org/fr/FAQ/CentOS5?action=edit Take care, Daniel ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
Re: [CentOS-virt] kvm under centos5.1/5.2
On Fri, Jun 20, 2008 at 10:31 AM, carlopmart [EMAIL PROTECTED] wrote: Somebody have tried kvm under centos 5/5.1/5.2?? How stable and usable is it?? Any tip?? After redhat news about support kvm in the future I think that software will be more releveant in virtulized environments. It works well for me (kvm from CentOS-extras). I have pushed newer versions to CentOS-testing. But all newer versions seemed to have problems for some people. Take care, Daniel ___ CentOS-virt mailing list CentOS-virt@centos.org http://lists.centos.org/mailman/listinfo/centos-virt
Re: [CentOS-docs] Article for wiki consideration
On Thu, May 29, 2008 at 11:26 AM, Karanbir Singh [EMAIL PROTECTED] wrote: Manuel Wolfshant wrote: vserver is quite popular, especially among debian admins and even among hosting companies, so I am very much in favor of publishing this article. Has anyone made contact with the admin / packager at the mentioned repo ? Good question! I have just dropped him a note, and invited him to this discussion. Take care, Daniel ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
Re: [CentOS-docs] Re: Opening of the Wiki - Part I
On Tue, May 20, 2008 at 4:12 PM, Ned Slider [EMAIL PROTECTED] wrote: That should block the vast majority of spam, shouldn't it? On a Dutch forum we were dealing with a considerable amount of spam. Most spam account creation/posting is done automatically through scripts. So, we simply added an additional account creation field with a verification question the can only be answered by humans, like: Op welke dag is Kortjakje niet ziek? (On which day isn't Kortjakje ill?) There is this Dutch children's rhyme/song that everyone knows, and tells the story of Kortjakje, who is ill on every day except Sunday. There must be a nice English equivalent :). After this change there has been virtually no spam on the forum (I think only once through an unrelated bug). Take care, Daniel ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
Re: [CentOS-docs] Opening of the Wiki - Part I
On Tue, May 20, 2008 at 2:54 PM, John [EMAIL PROTECTED] wrote: Aggree..I would like for the Authors name and Co-Authored names to remain on the article they have written. Since many people feel this is important, maybe we should. But I'd propose to include a note somewhere on the Wiki that it is ok to change 'someone else's pages', as long as it is an improvement, and that major changes can be discussed on centos-docs. Take care, Daniel ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
Re: [CentOS] FireFox
On Wed, May 28, 2008 at 1:31 AM, Stephen John Smoogen [EMAIL PROTECTED] wrote: It will depend upon if Red Hat will release a version for Red Hat Enterprise Linux. The best bet will be that they will not release it until RHEL-4.7 goes into beta testing. It looks like there is a good chance it will be included in 4.7: https://www.redhat.com/archives/nahant-list/2008-May/msg00052.html (- Added Firefox3) Take care, Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS-docs] Article for wiki consideration
Hi Scott, On Tue, May 27, 2008 at 10:12 PM, Scott Robbins [EMAIL PROTECTED] wrote: I've recently documented simple use of a VServer with CentOS host and guest. toracat@ said that it might be worthwhile putting on the wiki. Hmmm, this requires a modified or a non-CentOS kernel. Do we really want to start recommending such kernels? Take care, Daniel ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
Re: [CentOS-docs] Article for wiki consideration
On Wed, May 28, 2008 at 4:49 PM, Scott Robbins [EMAIL PROTECTED] wrote: As I mentioned, I would begin the article with something similar to the beginning of the custom kernel article, with dire warnings. However, if you and/or the other powers that be feel it is almost advocating something that has risks, I certainly understand that. Well, if there is a lot of interest in having container-type of virtualization. It might be interesting to see which of the various alternatives (linux-vserver or openvz) looks best, and see if we can provide it through e.g. the plus repository. Of course, this would require a volunteer who is willing to maintain such a set of patches against the kernel. But if someone is willing to do this, it can profit from CentOS quality assurance, and guarantee good compatibility with CentOS. Take care, Daniel ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
Re: [CentOS-docs] Opening of the Wiki - Part I
On Mon, May 19, 2008 at 1:53 PM, Karanbir Singh [EMAIL PROTECTED] wrote: Akemi Yagi wrote: http://lists.centos.org/pipermail/centos-docs/2007-October/000734.html As you can see in that thread, placing a moderator's name on each page was opposed by a few core members of the CentOS team. Then the discussion sort of died down. I'd like to know, if the name(s) are hidden from the readers, assigning maintainers would be agreeable to them. Any more thoughts or ideas? I dont understand why someone's name needs to be on the page, for them to be able to subscribe to the changelog for a page ? I agree. I still agree with myself one year ago: I can only agree. Even it is not the intention to keep people away, people will feel like they have to consult with the author on every edit. This works against the goal of wikis: providing complete, correct, and understandable information. I know that you are not proposing to have visible names, but I think the same thing applies to ownership that is shown when a page is edited. Other than that, page subscriptions should do the job fine? And why can't the editors be responsible for all of the Wiki? I think it is better if abuse is fixed by the first person who spots it, rather than a special moderator. I can't really see what purpose this proposal serves ;). Take care, Daniel ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
Re: [CentOS] Re: [CentOS-announce] Impact of the Debian OpenSSL vulnerability
On Mon, May 19, 2008 at 3:53 PM, Johnny Hughes [EMAIL PROTECTED] wrote: Les Mikesell wrote: Does anyone know the point of the patch in the first place? That is, why would a distro-specific modification have been needed at all? I don't suspect an intentional compromise here but I'm curious about why anyone would consider a non-standard change. The change was added due to valgrind testing of openssh and warnings produced while compiling. The removal was discussed on the openssh-devel list. If was clearly an accident caused by trying to do the right thing. And a miscommunication, it seems that the OpenSSL developers the patch was just used for debugging purposes, while the Debian packages understood it as a confirmation that the patch was ok. Errors do happen, even to the brightest of all developers. Though, most bugs do not have such far-reaching consequences. The best thing is to learn from it, and to move on. Take care, Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: [CentOS-announce] Impact of the Debian OpenSSL vulnerability
On Sun, May 18, 2008 at 10:06 AM, Les Bell [EMAIL PROTECTED] wrote: The generation of random numbers is to important to be left to chance. Speaking of which, this seems to be a nice poor man's hardware RNG, that uses ALSA: http://www.digital-scurf.org/software/randomsound (Per Russell Coker's excellent blog.) -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: [CentOS-announce] Impact of the Debian OpenSSL vulnerability
On Sun, May 18, 2008 at 7:55 PM, Stephen John Smoogen [EMAIL PROTECTED] wrote: I don't think either Red Hat or OpenSSH are going to do much with this. From what I have been told the search for bad ssh items if used inside of SSH slows down connections quite a bit because it does a search through the 1.5 MB space everything you connect. However, that could have been fixed with a quicker search algorithm by now It uses binary search, so O(log n). Should be fast enough... -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS-docs] FAQs
On Sat, May 17, 2008 at 9:13 PM, Karanbir Singh [EMAIL PROTECTED] wrote: Ned Slider wrote: Presumably it would be preferable if there was just one, and as the main site FAQs seem old, plus Akemi and I both have edit rights to the Wiki, we would propose to add missing content contained in the main site FAQs onto the Wiki page as necessary making this the most complete FAQ repository. Sounds like a good idea. +1 -- Daniel ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
Re: [CentOS] Re: [CentOS-announce] Impact of the Debian OpenSSL vulnerability
On Sat, May 17, 2008 at 12:25 PM, Ralph Angenendt [EMAIL PROTECTED] wrote: If you take a look at http://debian.wideopenssl.org/ there are so many applications which might have broken keys even on non-Debian systems that I think offering a tool for just ssh keys might give people a wrong sense of security, if they don't find broken ssh keys on their machines. People often mistake tools for facts. Just like rootkit detection utilities, people should realize that key detection is just a tool to assist with finding obvious compromises. I think it is ok, to provide one of these detection tools through the -extras repository, as long as it is made clear in the documentation what it detects, what it does not detect, and whether there is a chance of having false-positives. Wrt. fingerprint-based blocking in OpenSSH: - What does our upstream think about this? - What do the OpenSSH developers think about this? I think a general scheme for blocking certain public keys might be useful, even outside this specific case. But I am not sure it is a good idea to make/use vendor-specific extensions. Take care, Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS-announce] Impact of the Debian OpenSSL vulnerability
A severe vulnerability was found in the random number generator (RNG) of the Debian OpenSSL package, starting with version 0.9.8c-1 (and similar packages in derived distributions such as Ubuntu). While this bug is not present in the OpenSSL packages provided by CentOS, it may still affect CentOS users. The bug barred the OpenSSL random number generator from gaining enough entropy required for generating unpredicatable keys. In fact it appearss that the only source for entropy was the process ID of the process generating a key, which is chosen from a very small range and is predictable. As such, all keys generated using the Debian OpenSSL library should be considered compromized. Programs that use OpenSSL include OpenSSH and OpenVPN. Note that GnuPG and GNU TLS do not use OpenSSL, so they are not affected. This vulnerability can affect CentOS machines through the use of keys that were generated with the OpenSSL package from Debian. For instance, if a user uses OpenSSH public key authentication to log on to a CentOS server, and this user generated the key pair with a vulnerable OpenSSL library, the server is at heavy risk because the key can be reproduced easily. Additionally, all (good) DSA keys that were ever used on a vulnerable Debian machine for signing or authentication should also be considered compromized due to a known attack on DSA keys. As a result of this bug, everyone should audit *every* key or cerficicate that was generated with OpenSSL, to trace its origin and make sure that it was not generated with a vulnerable Debian OpenSSL package. Or in the case of DSA keys care should be taken that they were not generated or used on a system with a vulnerable OpenSSL package. Keys that are potentially compromised should be replaced with strong keys. The Debian Wiki[2] has a preliminary list of affected application. A tool to detect potentially weak keys is also provided, but it contains an incomplete list of affected keys and can give false positives. The Metasploit project provides a full list of weak keys in various configurations[3]. Questions on how this may affect CentOS users should be directed to the CentOS users list. List subscription information is available from: http://lists.centos.org/mailman/listinfo/centos With kind regards, The CentOS Team [1] http://www.debian.org/security/2008/dsa-1571 [2] http://wiki.debian.org/SSLkeys [3] http://metasploit.com/users/hdm/tools/debian-openssl/ ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
Re: [CentOS] OpenSSL/SSH Bug on Debian - Compromised key pairs
On Thu, May 15, 2008 at 12:20 AM, Clint Dilks [EMAIL PROTECTED] wrote: I know this may seem off topic, but I thought for those of us who might have Debian users generating key pairs that they put on CentOS systems people should be aware that everybody who generated a public/private keypair or an SSL cert request on Debian or Ubuntu from 2006 on is vulnerable Yes, it is very important to follow up on this issue as soon as you can (now) to see if any of your keys or those of your users are affected. Additionally, it should be noted that in the case of *DSA* keys, this can even affect users who do have good keys but used them to communicate with a Debian server with the botched OpenSSL. An explanation of this problem is provided here: http://blog.sesse.net/blog/tech/2008-05-14-17-21_some_maths.html Take care, Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OpenSSL/SSH Bug on Debian - Compromised key pairs
On Thu, May 15, 2008 at 2:19 PM, Daniel de Kok [EMAIL PROTECTED] wrote: Yes, it is very important to follow up on this issue as soon as you can (now) to see if any of your keys or those of your users are affected. Additionally, it should be noted that in the case of *DSA* keys, this can even affect users who do have good keys but used them to communicate with a Debian server with the botched OpenSSL. Jikes, rereading this, this does not seem accurate at all. Let me just quote the advisory: Furthermore, all DSA keys ever used on affected Debian systems for signing or authentication purposes should be considered compromised; the Digital Signature Algorithm relies on a secret random value used during signature generation. Take care, Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS-virt] build custom domU kernel from centos kernel source
On Tue, May 13, 2008 at 5:10 PM, David Hláčik [EMAIL PROTECTED] wrote: Hi, i am trying to build a custom xen kernel from CentOS source kernel rpm . What i want to achieve is to have custom domU kernel without modules, which will boot domU machine without having /lib/modules . [snip] Why would you want to do that? Besides that it is not supported, you don't get the comfort of automatic kernel security updates. Take care, Daniel PS. Please refrain from cross-posting. ___ CentOS-virt mailing list CentOS-virt@centos.org http://lists.centos.org/mailman/listinfo/centos-virt
Re: [CentOS] where is centos live cd?
On Mon, May 12, 2008 at 9:41 PM, happymaster23 [EMAIL PROTECTED] wrote: I have question - why you need live CD for server distribution such as CentOS? For desktop distributions such as Fedora or Ubuntu this is natural, but for server? Please note that CentOS is *also* a desktop distribution (or workstation distribution if you prefer). Not everybody wants to reinstall their desktops yearly, or have a changing API. Take care, Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS-docs] Helping translating...
On Fri, May 9, 2008 at 3:45 PM, Lester Espinosa Martínez [EMAIL PROTECTED] wrote: At the moment, the translation for this page is not available. In their place the page has been shown in English language. This is the missing translation page plugin kicking in, add '?action=edit' to the name of the page you want to edit. For instance: http://wiki.centos.org/es/HowTos/KVM?action=edit Take care, Daniel ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
Re: [CentOS-virt] tick divider bugs
On Mon, May 5, 2008 at 11:06 AM, Allen Tsang [EMAIL PROTECTED] wrote: By Paravirtualization, I mean the installation of tools or guest additions type packages, which present virtual interfaces to the guest OS. So in VMware, a component of this would mean setting ethernet0.virtualDev = vmxnet, and having the tools modules pre-installed. A fully virtualized OS for VMware would support all that crap. Let's call these paravirtualized drivers ;), because the system itself is fully virtualized under VMWare and VirtualBox, that's why they can run unmodified operating systems. I know of tru's efforts and others on this front and I really appreciate the knowledge they have brought to the table, but I feel that it's about time that some dedicated entity step in and 'solve' this problem Can you concretely define the problem, and your proposed solution? I am not sure what you are aiming for, and what Tru's images are missing that you are looking for. One man cannot keep such a beast up to date; it needs to be a dedicated effort or project. I think Tru is doing a great job this far. The thing is that we could make a project out of any problem, but that in practice all work is done by one or a few dedicated people. Look at the i586 project: a lot of people say they need CentOS-5 for i586, some people volunteer, some people insist on creating a subproject for this, but in practice nothing happens until someone single-handedly gets the effort going. To me, it seems best to send suggestions to Tru if something is missing. If you want to create something different, write a proposal and send it to this list (if it is related to virtualization, -devel otherwise). Take care, Daniel ___ CentOS-virt mailing list CentOS-virt@centos.org http://lists.centos.org/mailman/listinfo/centos-virt
Re: [CentOS-docs] CentOS wiki section for job postings?
On Thu, May 1, 2008 at 8:13 PM, Karanbir Singh [EMAIL PROTECTED] wrote: you dont want job postings to stay online for years do you ? For some reason, I'd still prefer a centos-jobs list. It's simply the geek's medium for communication ;). I like stuff being pushed to my mailbox, rather than having to visit some site to keep up. Many other projects also have a -jobs list, doesn't seem to be a problem there. -- Daniel ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
Re: [CentOS] howto use kvm-amd on centos 5.1
On Fri, Apr 18, 2008 at 3:46 PM, Jerry Geis [EMAIL PROTECTED] wrote: I want to put this on my desktop that is running 2.6.18-53.1.14.el5. Is there a way or do I just wave to use 2.6.24 or 25. yum install kmod-kvm should do the trick, because KVM is in extras. I am currently working on KVM-66 packages as well, that will be pushed to testing if they work ok. Take care, Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CONNECTING VIA SSH BETWEEN CENTOS 4 AND 5
On Wed, Apr 16, 2008 at 9:32 PM, Chris Geldenhuis [EMAIL PROTECTED] wrote: I generate they key pair without a pass phrase on the client and copy the public key to the same user's .ssh directory on the server as authorized_keys2. Why not 'authorized_keys'? 'authorized_keys2' has become deprecated ever since SSH switched to version 2 of the protocol by default. Take care, Daniel PS. You can use the '-v' flag to ssh to debug things better. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] SSH Question relating to Public and Private Keys
On Tue, Apr 15, 2008 at 7:56 AM, Clint Dilks [EMAIL PROTECTED] wrote: 1. Currently all of the key pairs we are using have empty passphrases is it worth the effort of changing this and setting up ssh-agent compared to what you gain in security by doing this ? Sure. In the first case someone would only need the key to get into a machine, in the second case you need a key and a passphrase. Of course, that's stating the obvious, but it clearly adds a layer of security. So, do you want to trade security for comfort? I wouldn't, but that's your choice to make. 2. At this stage I am going to use RSA Keys of the default size, is this generally the best approach? While asymmetric cryptography is slow, the RSA keys are used to exchange keys for (fast) symmetric cryptography. So, it's usually a good idea to create large keys. Fortunately, the default in OpenSSH is 2048, which seems to be a fair key size. -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] More info for -perm 2 ?
On Tue, Apr 15, 2008 at 11:34 AM, Fajar Priyanto [EMAIL PROTECTED] wrote: Thanks for the clue. It took me to several times of reading to get it :) Sometimes I can see complex things fast, but fails to see very simple ones. You may also want to read up on: http://kajero.com/books/unixsystems/html/chap-filesystem.html Take care, Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] yum update did not complete
On Tue, Apr 15, 2008 at 2:55 AM, Jerry Geis [EMAIL PROTECTED] wrote: was doing the next part and my remote connection was lost. so ssh session was killed. When I logged back in I am not sure if the update is done or not. I presume not. This is a very good reason to use 'screen' ;). -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] GNOME issue. Seeking Guidance.
On Mon, Apr 14, 2008 at 11:47 PM, [EMAIL PROTECTED] wrote: If there is anyone who has experianced this, can you please give me further guidance. I have tried everything below, and still can not get anything to come up with GNOME. If pirut is started from a terminal as a normal user. Does it actually say what modules are missing? Take care, Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] 12V computing?
On Sat, Apr 12, 2008 at 12:16 AM, John R Pierce [EMAIL PROTECTED] wrote: Ben Gore wrote: I have run CentOS 4.5 on this platform without problems. I wouldn't expect any issues with CentOS 5+. are these Via C7 processors i686 compliant? Yes they are. Everything from the Nehemiah and newer cores. -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Custom SELinux file contexts?
On Mon, Apr 14, 2008 at 5:05 PM, Ingemar Nilsson [EMAIL PROTECTED] wrote: but rather put one or more similar files somewhere. A file_contexts.d firectory would be nice, but it isn't available. Just creating your own file_contexts.local file does not work, I already tried. /etc/selinux/targeted/contexts/files/file_contexts.local works fine for me. Did you use restorecon afterwards to relabel the relevant files/directories? -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS-docs] Doc for the Wiki
On Wed, Apr 9, 2008 at 5:51 PM, Akemi Yagi [EMAIL PROTECTED] wrote: [snip] alternative methods to get the desired program/software. There are, however, situations in which compiling from the source is the only way. In this case, I will try to make sure the procedure does not touch any distro-provided files. It seems plone is in RPMForge? http://dries.ulyssis.org/apt/packages/plone/info.html Maybe someone can help Dag and Dries updating this to the latest Plone? Take care, Daniel ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
Re: [CentOS] Xen Install
On Sat, Mar 29, 2008 at 4:36 AM, John [EMAIL PROTECTED] wrote: http://wiki.centos.org/HowTos/Xen/InstallingCentOSDomU In reading that How To, will using the GUI Configuration Tools create all the files need to run a DomU. Will I have manual edit any configuration files? Yes, you can use virt-manager to do this. Next question is the machine has 256MBs of ram and Dom0 uses about 225MBs of it. Is that a bit much? VmWare Server does not use that much ram. See #top BelowWith out running the Xen Kernel it has no where near the ram usage as with the Xen one. Is that expected? dom0 takes the memory it can use, but if you create a domU, Xen will use ballooning to reduce the amount of memory allocated to dom0. You can set the minimum of dom0 memory in /etc/xen/xend-config.sxp by tweaking the dom0-min-mem option. Be aware that the hypervisor also takes a chunk of memory, so you may want to add more memory to get a useful setup. Take care, Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] RHEL on The Pirate Bay, Mininova, etc
On Sun, Mar 23, 2008 at 2:31 AM, Johnny Hughes [EMAIL PROTECTED] wrote: If you enter into a legally binding contract, then you waive your rights as specified in the contract. IANAL I don't think that is possible. According to the GPLv2: 4. You may not copy, modify, *sublicense*, or distribute the Program except as expressly provided under this License. *Any attempt otherwise to copy, modify, sublicense or distribute the Program is void, and will automatically terminate your rights under this License.* [...] 6. Each time you redistribute the Program (or any work based on the Program), the recipient automatically receives a license from the original licensor to copy, distribute or modify the Program subject to these terms and conditions. *You may not impose any further restrictions on the recipients' exercise of the rights granted herein*. [...] (Emphasis added.) The GPL is very explicit that no further restrictions can be imposed on sources or binaries. So, I guess the Red Hat license as quoted by Johnny would void their rights to distribute the affected GPL software. As such, I can only conclude that the quoted Red Hat license applies to some non-GPL packages. -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] RHEL on The Pirate Bay, Mininova, etc
On Sun, Mar 23, 2008 at 9:17 AM, Stephen John Smoogen [EMAIL PROTECTED] wrote: RMS and the FSF has said this is not a restriction on the software.. it is a restriction upon you for getting a compilation and update service from Red Hat. But once you have retrieved the compiled package through a subscription, it is governed under the GPL, right? And the GPL does not allow for such restrictions. -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] RHEL on The Pirate Bay, Mininova, etc
On Sun, Mar 23, 2008 at 12:58 PM, Johnny Hughes [EMAIL PROTECTED] wrote: Daniel de Kok wrote: On Sun, Mar 23, 2008 at 9:17 AM, Stephen John Smoogen [EMAIL PROTECTED] wrote: RMS and the FSF has said this is not a restriction on the software.. it is a restriction upon you for getting a compilation and update service from Red Hat. But once you have retrieved the compiled package through a subscription, it is governed under the GPL, right? And the GPL does not allow for such restrictions. Not at all ... You have signed an agreement as to how you will use the software ON YOUR machines as long as you obtain software from RHN without paying Red Hat for each installation. There is NO RESTRICTION that you may not charge for each copy of GPL software .. it is specifically allowed. True, but the copy that you retrieved is governed by the GPL, which gives users certain rights that can not be taken away by additional contracts (which would void the rights to distribute the software). The GPL is very explicit about this, and those licensing restrictions are imposed by the author of the software, and as far as I understand Red Hat can not modify the licensing terms of others with contracts. They can only do that for some non-GPL licensed software, and their own software/artwork. -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] RHEL on The Pirate Bay, Mininova, etc
On Sun, Mar 23, 2008 at 1:28 PM, Ignacio Vazquez-Abrams [EMAIL PROTECTED] wrote: I'm not talking about the spec file metadata, I'm talking about the signature that's applied to the package itself. A signature is just a special digest of the contents. I don't see how that could be licensed differently. -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] RHEL on The Pirate Bay, Mininova, etc
On Sun, Mar 23, 2008 at 1:57 PM, Ignacio Vazquez-Abrams [EMAIL PROTECTED] wrote: On Sun, 2008-03-23 at 13:46 +0100, Daniel de Kok wrote: On Sun, Mar 23, 2008 at 1:28 PM, Ignacio Vazquez-Abrams [EMAIL PROTECTED] wrote: I'm not talking about the spec file metadata, I'm talking about the signature that's applied to the package itself. A signature is just a special digest of the contents. I don't see how that could be licensed differently. And a painting of a landscape is just a special digest (or interpretation, if you prefer) of a landscape. It falls under copyright law, regardless of what laws the canvas or paint are required to follow. That's a flawed analogy. Virtually, all jurisdictions require work to be original to qualify for copyright. Painting a landscape requires effort, and originality, mechanically making a digest with encryption software doesn't. Anyway, let's not continue with *this* slippery slope. The next guy will proclaim that downloading software and recompressing it with bzip2 constitutes a new work ;). -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] RHEL on The Pirate Bay, Mininova, etc
On Sun, Mar 23, 2008 at 2:24 PM, Johnny Hughes [EMAIL PROTECTED] wrote: But they are not taking away any rights, you may distribute (the GPL portions) however you want. You may use it however you want. They are just charging for each copy. Yes. But we never disagreed on that. But if you retrieve a copy of GPL'ed software from RHN, you are allowed to redistribute it according the terms of the GPL. You also brought up the redhat-logos rpm, with is NOT GPL. That particular RPM is required for system operation and they certainly can charge for each copy of that rpm that is run. True, as I have stated in my previous e-mail. Of course, just using CentOS (or Scientific Linux, WBEL) will free you up from that payment issue anyway :D Yes :). Making RHEL piracy kinda pointless ;). -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS-docs] new translator
Hi Nicolas, On Sat, Mar 22, 2008 at 11:37 AM, nicolas dolisy [EMAIL PROTECTED] wrote: I introduce myself quickly, my name is nicolas dolisy, I use fedora since 2003, and centos since last year. I write this mail because i want to contribute to the french translation of the Wiki. So if an admin can let me access to the french pages, it would be nice... Could you provide some sample translations (e.g. for existing Wiki pages)? Take care, Daniel ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
Re: [CentOS] recommendation for Virtual Dedicated Server based on Centos
On 3/3/08, Simon Jolle sjolle [EMAIL PROTECTED] wrote: I am searching for a virtual server/rootserver. I prefer a Xen instance, but also vservers are acceptable. Will be host a small Wiki - nothing mission critical. Here my criteria [snip] If you are in a more experimental mood, you may want to check out Gandi Hosting (which is currently beta). The advantage: their Xen-based hosting is very flexible. You an easily add/drop machines, add/drop resources to existing machines, etc. The disadvangtage: since it is still beta, it may freeze your cat or steal your milkshake. http://www.gandi.net/hosting/ -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Send in your favorite CentOS slogan today
On 3/3/08, William L. Maltby [EMAIL PROTECTED] wrote: On Mon, 2008-03-03 at 10:36 -0600, Dan Carl wrote: Heard someone mention free beer, had to participate. CentOS, we find RedHat's bugs CentOS, the OS that makes sense. Consistently Excellent No-cost Terrific Open Source (CENTOS) Can effectively nuke that Other System? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS-virt] Issue with dom0 xen ballooning
On 2/20/08, Tim Verhoeven [EMAIL PROTECTED] wrote: I did not see the problems you are having but I have a set of Xen hosts and by default I limit the memory usage of the dom0 to 512MB using the dom0_mem option that you mentioned. In my case the dom0's are not doing anything so why do they need the memory in the first place ? That is why I've limited my dom0's like this by default, I consider this a good practice for these kinds of setups I can only agree. Except for a desktop setup dom0 should do nothing except acting as an administrative domain. Besides the potential memory issues that were mentioned, it gives increased security. If a dom0 is compromised, all other domains are also tainted. On my machines dom0s get fairly little memory and doesn't run much besides a heavily protected SSH daemon. -- Daniel ___ CentOS-virt mailing list CentOS-virt@centos.org http://lists.centos.org/mailman/listinfo/centos-virt
Re: [CentOS] ReiserFS
On 1/28/08, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: Is their any gotcha when using ResiserFs as a file system? Aside from not being supported by the CentOS kernels in base/updates, I would recommend against it. No major distributor seems to put development effort into reiserfs anymore and I have seen a lot of people having major recovery problems with it (e.g. when the internaly tree is badly damaged, reiserfs fsck may try to merge anything that looks like a reiserfs filesystem, like filesystems in disk images). -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS-announce] Artwork SIG created
Computers are useless. They can only give you answers. - Pablo Picasso The CentOS team is pleased to make computers more useful through the creation of the Artwork Special Interest Group (SIG). A SIG is a smaller group within the CentOS project that focuses on a small set of issues, in order to either create awareness or to focus development along a specific topic. The Artwork SIG has the following goals: - Creating several mockups for each CentOS major release, and selecting and improving those designs to create a final, solid artwork release. - Testing the artwork at different resolutions and brightness levels, and for different user groups. - Creating a consistent and pleasant CentOS style for marketing material. - Helping creating and maintaining a consistent artwork for the official CentOS websites. The Artwork SIG will be led by Gideon de Kok, with help from Ralph Angenendt as the CentOS development team member. Information about the Artwork SIG can be found at: http://wiki.centos.org/SpecialInterestGroup/Artwork General information about CentOS SIGs is available at: http://wiki.centos.org/SpecialInterestGroup You are invited to discuss artwork on the CentOS development list: http://lists.centos.org/mailman/listinfo/centos-devel With kind regards, The CentOS team ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
Re: [CentOS] Why iptables are not working?
On 1/23/08, Tolun ARDAHANLI [EMAIL PROTECTED] wrote: in our server we dont have iptables command! and i am trying to install it with that yum -y install iptables after this command it says that ...nothings to do. Do you have any suggestion for installing the iptables? Then it's probably installed, which you can check with: rpm -q iptables Note that iptables is in /sbin. So, if you are changing to root, use su with a dash (-) to make sure that the PATH variable is updated: su - If not, you'll have to specify the full path to the iptables command. -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] mysql versions
Hi Jure, On 1/22/08, Jure Pečar [EMAIL PROTECTED] wrote: Any particular reason for that or it is just that no one has yet compiled packaged 5.0.5x for c5? CentOS aims to be binary compatible with the distribution provided by our upstream provider. They keep most software at the same version during the support cycle, and backport fixes/security patches to that particular version. -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 5.1 DomU on Debian Etch Dom0
Hi Simon, On 1/21/08, Simon Jolle [EMAIL PROTECTED] wrote: I successfully installed a Centos 5.1 DomU on Debian Etch Dom0. I used the virtual file systems from Jailtime[0] How to this manual (without using Jailtime)? I wish to install from Scratch. Xen-tools/rpmstrap doesn't work for me. The procedure outlined at http://wiki.centos.org/HowTos/Xen/InstallingCentOSDomU should also work under Debian, since it just relies on xentools and a CentOS kernel and initrd image. -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] centos command to monitor a process for exit
On 1/10/08, Jerry Geis [EMAIL PROTECTED] wrote: Is there a command that will monitor a process for exiting (crash or normal exit) and then execute another command based on the said process no longer being active? If you want something simple, the wait(1) command can block until some process specified by its PID terminates. -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS-virt] i386 VM on x86_64 host in Xen
On Tue, 2007-12-11 at 11:27 -0500, Scott Dowdle wrote: There are uses where Xen is much better suited and OpenVZ isn't even a viable option. But there are other cases where OpenVZ is a better fit especially with regards to density and scalability. OpenVZ is also very attractive in those situations where you want to isolate a single or a small number of services... although the vast majority if my deployments have a full set of services. Yes. It's good not to underestimate OS-level virtualization. Many people used chroot to isolate certain processes. OS-level virtualization provides better isolation and control, at only little extra cost. Operating systems that provide binary compatibility for other systems (like the BSDs or Solaris) can also use OS-level virtualization to emulate a complete enviroment that resembles the emulated system. The downside of most (if not virtually all) current OS-level virtualization on Linux is that they do not have proper support for SELinux. I suppose that things get more interesting in that respect when container features are integrated in the mainline kernel. -- Daniel ___ CentOS-virt mailing list CentOS-virt@centos.org http://lists.centos.org/mailman/listinfo/centos-virt
Re: [CentOS-docs] Wiki deuglification, last (at the moment) part
On Wed, 2007-11-21 at 17:36 +, Lance Davis wrote: On Wed, 21 Nov 2007, Ralph Angenendt wrote: Hey, one last change maybe - with the 3% padding on top and bottom, we really lose screen estate at the top. How does it look to you without any padding at top/bottom (leaving a 10px white line there)? That's what's live on wiki-m.centos.org at the moment. Looks fine - I would do the same at the sides as well. I am not sure. It is known from studies that people can only read optimally up to a certain text width. Not that a fixed size is enforced now, but the smaller relative width it has now, improves the readability of longer texts. *If* we want to fill up the sides, I think it is better to do that with menus or some other content in the future. -- Daniel ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
Re: [CentOS-docs] Last Change for the css
On Wed, 2007-11-21 at 16:09 -0800, Akemi Yagi wrote: On Nov 21, 2007 3:58 PM, Ralph Angenendt [EMAIL PROTECTED] wrote: Hey, Just joking. We already are live. See http://wiki.centos.org/. And now, Ladies and Gentlemen, show a big round of applause for Alain! Alain: Thank you in the name of the CentOS Team. Great work. Thank you, Alain and Ralph. The CentOS wiki finally looks so professional. Indeed, many thanks to both of you for making this happen! -- Daniel ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
Re: [CentOS-docs] modern-CentOS-1.7-2
On Fri, 2007-11-16 at 10:57 -0500, Alain Reguera Delgado wrote: On 11/16/07, Daniel de Kok [EMAIL PROTECTED] wrote: On Fri, 2007-11-16 at 15:22 +0100, Ralph Angenendt wrote: Daniel de Kok wrote: How about renaming these a bit: Better? Very nice! Looks good ... but it breaks navibar when I access a page different from those listed in navibar :-\ ... does it happen to you too ? That depends on the browser window width here. I've always found it unintuitive that the page title/path is shown in the navibar. Maybe we should think about leaving that out? -- Daniel ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
Re: [CentOS-docs] modern-CentOS-1.7-2
On Thu, 2007-11-15 at 13:43 +0100, Ralph Angenendt wrote: Second: We still need to decide to which pages we link in the Navbar. Are any changes needed regarding the pages we have there at the moment? How about renaming these a bit: GettingHelp - Help/Getting help HowToContribute - Contributing/Contribute/How to contribute (The normal Wiki syntax can be used in the Moin config.) -- Daniel ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
Re: [CentOS-docs] GoogleAds on wiki.centos.org
On Tue, 2007-10-30 at 14:55 -0500, Alain Reguera Delgado wrote: There are some troubles with the two searchform variant, the version modern-CentOS-1.6-7 fix this by removing the searchform at bottom and just leaving the upper one. http://wiki.centos.org/FrontPageProposal?action=AttachFiledo=gettarget=modern-CentOS-1.6-7.tar.gz What do you think ? would be convenient to have the searchform at bottom too ? I haven't kept track of the full discussion, but I think this layout is definitely an improvement over the current layout. Some comments: - The tab color for the selected page doesn't match up nicely with its background. - I think a full-blown background for every heading within the page is not easy on the eyes. How about just a colored heading (with no background)? Thanks for making this happen Alain! -- Daniel ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
Re: [CentOS] question on CentOS 4.4 SCD - CentOS 5?
On Mon, 2007-10-15 at 12:01 -0700, Rogelio wrote: If possible, I'd like to do a minimal l CentOS 4.4 (the Single Server CD) installation and then mass upgrade everything to CentOS 5. I googled and found this URL http://wiki.centos.org/HowTos/MigrationGuide/ServerCD_4.4_to_5 Is this recommended? Or will might I run into any problems? If you plan to run CentOS 5, why not install it directly? If you want a smaller installation medium, you can download the os/arch/images/boot.iso ISO image and do a minimal netinstall. You could also use just the first CentOS 5 CD and do a minimal install (disable all software groups). -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: CentOS Wiki Access [was Re: [CentOS-docs] need a TOC]
Hi Phil, On Thu, 27 Sep 2007, Phil Schaffner wrote: 1. Join the -docs list and offer to contribute something. 2. Implement the contribution and respond to comments. 3. Remain active for some probationary period, TBD. 4. Request members Wiki access granting privileges to edit existing pages not explicitly protected and create new pages in public areas of the Wiki. [1] Basically this has been the procedure, while there is a (sorta) 3.5 step: actively contribute to other parts of the Wiki as well. But I agree that we should be more generous in giving frequent contributors write access to public parts of the Wiki. -- Daniel ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
Re: [CentOS-docs] SSH contribution?
On Thu, 27 Sep 2007, Ned Slider wrote: Also, is it possible for any contributor to have a personal Wiki profile page or is this something restricted to more Senior Contributors/CentOS Devs? AFAIK this doesn't require additional rights, just edit your own WikiName like this: http://wiki.centos.org/YourWikiName?action=edit -- Daniel ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
Re: [CentOS-docs] Clarification in HowTos/MigrationGuide page
On Sun, 2007-09-09 at 13:42 -0400, Alain Reguera Delgado wrote: See where it says --- Although both can be used together --- . Just for confirmation: they will work together, but it is generally a bad idea, because one of the plugins override packages that the other is supposed to protect. I agree that this page should be changed in this respect. -- Daniel ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
Re: [CentOS-docs] Untranslated page redirection
On Fri, Aug 10, 2007 at 02:26:49PM -0400, Alain Reguera Delgado wrote: On 8/10/07, Daniel de Kok [EMAIL PROTECTED] wrote: On Fri, 2007-08-10 at 14:50 +0200, Daniel de Kok wrote: will show the English page with a small message on top. I forgot to mention that if you'd like to have that message altered for your language, please send a translation of it to the list. Thanks Daniel ... here you have a Spanish translation for the redirection wiki message: == Actualmente, la traducci?n para esta p?gina no se encuentra disponible. En su lugar se ha mostrado la p?gina en idioma Ingl?s. == Sorry for missing this, it should work now :). -- Daniel ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
[CentOS-docs] Untranslated page redirection
Hi all, Just a heads-up: we have added the untranslated page redirection plugin that was discussed on this list a while ago. This means pages that are requested under a language prefix that don't exist, are redirected to the English page if it does exist. For instance, there is no Spanish translation for /HowTos/FreeNX yet, so visiting http://wiki.centos.org/es/HowTos/FreeNX will show the English page with a small message on top. People with edit privileges in such contexts can create/edit a page by adding '?action=edit' to the URL. -- Daniel ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
Re: [CentOS] text installer used in Linux?
On Thu, 2007-08-09 at 10:34 -0700, Rogelio Bastardo wrote: I'd like to create one upon first time boot for a CentOS-based virtual application I'm making. So, after someone boots up, I'd like to have a little GUI thing ask them questions and then put those variables in a file (or maybe use something like sed to edit other network config files). Seems like you are referring to something like firstboot (which is what will show up on the first CentOS boot)? -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Will this work? server+centOS5+100users?
On Wed, 2007-08-08 at 05:57 -0500, Johnny Hughes wrote: I forgot to post docs for acl on centos5: http://www.centos.org/docs/5/html/Deployment_Guide-en-US/ch-acls.html Let me shamelessly plug some more ACL documentation ;): http://kajero.com/books/unixsystems/html/chap-filesystem.html#chap-filesystem-permissions-acl -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] RHEL5 and CentOS 5 root logins
On Wed, 2007-08-08 at 06:58 -0400, Scott Ehrlich wrote: I found, under a 64-bit CentOS 5 workstation install, it is possible to modify /etc/inittab and add a couple of lines to prevent root from logging into the console. /etc/securetty is the right place to configure this, see the securetty(5) manual page and http://www.centos.org/docs/5/html/Deployment_Guide-en-US/ch-sec-network.html#s1-wstation-privileges -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] near native performance with xen?
On Mon, 2007-08-06 at 16:54 -0400, Johnn Tan wrote: What error messages are you seeing? On one of my machines, I have four domU's (kernel 2.6.18-8.1.8.el5xen), each with 4 VCPUs. I don't see any errors in any of the domU's dmesg. But /proc/cpuinfo shows they are each using all 4 CPUs. Soft lockups on CPUs: http://bugs.centos.org/view.php?id=2161 -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] near native performance with xen?
On Tue, 2007-08-07 at 17:54 -0400, Johnn Tan wrote: I'm thinking it's either the kernel version or, like the user states, maybe it's something with HyperThreading. Hyperthreading is off on the machines where this occurs. Since the problem seems to occur handline timer interrupts, this could be a hardware-specific problem. -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS things to mod for VMware server
On Mon, 2007-08-06 at 09:00 -0400, Brent L. Bates wrote: I wouldn't use any other file system than XFS as it is the most reliable file system out there. We've been using XFS on a x86 system for over a year now and haven't had any file system problems. It has actually saved us on occasion. From what I've read, people have only reported problems when they pile layer upon layer of stuff on their disks. Logical volumes, NFS, etc., etc.. We are using XFS on RAID drives, both RAID 1 and 0, and the only extra item we add is NFS. Before our Linux boxes, we've used XFS on SGI's for probably over a decade of dependable and reliable service. I agree that it is a good filesystem. But its reliability relies a bit on the iron you have. XFS does lazy writes, this prevents some fragmentation and unnecessary writes, but can cause a larger loss of data when some hardware fails. Also watch out with 4K stack kernels. -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] near native performance with xen?
On Mon, 2007-08-06 at 14:55 -0400, Johnn Tan wrote: Assigning all the VCPUs. Having more than one vcpu currently emits non-fatal error messages, at least with the C5 domU kernel. I didn't have time to look into that yet. Though, it's probably useful for threaded applications if it works. Note that you can always specify which CPUs can be used by a domU (seen from the hypervisor), regardless of the number of vcpus. E.g.: cpus=0-1 vcpus=1 And as much RAM as you can get away with (maybe leaving the dom0 with 512MB). The Xen hypervisor requires 64MB RAM. If you don't do much work in dom0 you can set the dom0 memory fairly low. I have seen people setting it to 64 MB RAM. But remember that this is the minimum, suppose that a system has 1024 MB RAM, and only one 512MB domU guest. dom0 can use approximately 1024 - 512 - 64 = 448MB RAM, even if dom0-min-mem is set to 64. But are there others? Since I'm doing paravirtualization, I assume I don't need to turn on VT in the BIOS? No. What about 32-bit v. 64-bit OS, for the dom0 and for the domU? (I'll be using CentOS-5.) Anything else? A 64-bit dom0 with 32-bit domUs isn't currently supported in CentOS 5, but it it will in 5.1. -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Data corruption on external hard disk
On Sat, 2007-08-04 at 07:09 +0200, Niki Kovacs wrote: [EMAIL PROTECTED]:/media/disk/Films] $ ls -l total 692996 -rw-r- 1 678756852 34537972 148381783526817280 avr 28 01:01 Cinema drwxr-xr-x 3 kikinovak kikinovak 4096 mai 9 10:07 Anime drwxrwxrwx 4 kikinovak kikinovak 4096 mai 10 12:25 Series Notice that the file size is something like petabytes :oD Is there any way to repair this obviously corrupt data? Looks like a broken inode (or incorrect directory entry). I'd make a backup image of the disk first (if that works without serious errors) with dd. After that, run a badblocks check, and a fsck. -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS vs RedHat packages
On Sat, 2007-08-04 at 16:31 -0400, Scott Ehrlich wrote: Another learning experience question - it is my understanding that CentOS essentially IS RedHat but with any commercial connection removed. That being said, is there any difference in the included, or quality of packages between the two distros? I've got some basic issues with a critical server I'm about to set up, and if I cannot get beyond said issues, I may opt to try CentOS. Seeing that CentOS is free (can't call RedHat for support), I'm wondering if I should try and make the case for CentOS over RedHat. Once the choice is made, it may be next to impossible to revert to the other version (RH vs CentOS). CentOS aims to be 100% binary compatible with the upstream product. Additional or changed packages are included in the extras or plus repositories. E.g. CentOS plus provides a modified kernel with more options enabled, and extras the heartbeat clustering software. -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] kmod-drbd-smp (2.6.9-55.0.2.EL) has unknown symbols (kmod-drbd not).
On Fri, 2007-08-03 at 13:49 +0200, Martin Hamant wrote: Le Tue, 31 Jul 2007 14:16:54 +0200 Martin Hamant [EMAIL PROTECTED] écrivait: (snip) I don't know how it's possible to improve this, maybe a yum plugin which could detect any drbd modules and if it's matches with any installed kernels... what do you think ? Thanks to you :) Hmm in other words, I can contribute if something started to improve the system ;) I have written a plugin to carry over modules that are kabi compatible if no new package was found to cover for the module for a new kernel. The latest alpha version is available from: http://people.centos.org/~daniel/code/yum/3.0/yum-kmodorphans/ Please don't use this for production machines! There are still some glitches that need fixing, and the policy of what to handle still has to be finalized. -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] How to add to EPEL wishlist?
On Thu, 2007-06-28 at 03:46 -0700, Radu-Cristian FOTESCU wrote: Does anyone know how to submit wishes to the EPEL Wishlist here? http://fedoraproject.org/wiki/EPEL/WishList It reads Immutable Page. Wrong list? -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] MusicMatch Jukebox-like mp3 player...
On Wed, 2007-06-20 at 10:17 -0400, David A. Woyciesjes wrote: Dexter Stowers wrote: I use Rhythmbox 0.8.8 for my music. It saves in the .ogg format but it is a good ripper and player. I hope that this helps! Is this in one of the repos? I'm having a little trouble getting yum to find it... It's in (CentOS) (base). Maybe you have used an incorrect number of 'h's in the name? (Hit me a couple of times :p). -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] MusicMatch Jukebox-like mp3 player...
On Wed, 2007-06-20 at 17:39 +0200, Daniel de Kok wrote: On Wed, 2007-06-20 at 11:29 -0400, David A. Woyciesjes wrote: Now to get the mp3 plugin for it... RPMForge had all the plugins I needed. I should have added that Rhythmbox uses gstreamer plugins, so have a look at the gstreamer-plugins-* packages from RPMForge. -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 5 LiveCD - When?
On Wed, 2007-06-20 at 03:17 -0500, Mike McCarty wrote: Her hardware is not bleeding edge, it's four years old. But, when we plugged a USB mouse into her machine, it lost the keyboard. Windows recognizes both on that machine. CentOS 4 works great with older hardware, and is supported with security updates until 2012. There's a CentOS 4.4 live CD available through: http://isoredirect.centos.org/centos/4.4/isos/i386/ -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 5 and Xen Windows domU
On Mon, 2007-06-18 at 16:13 -0700, Fong Vang wrote: Has anyone been able to get a Xen Windows domU to install or work properly on CentOS 5? I'm trying to do that now. It's able to boot and start he installation (from ISO), but after partitioning the disk and copying a few files to the hard drive, it cannot boot into the graphical installer. Could you describe what happens? on_reboot = 'preserve' Are you sure you want this? Why not 'destroy' or 'restart'? -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Correct xen domains path
On Mon, 2007-06-18 at 11:50 +0200, Jordi Espasa Clofent wrote: 1. According to http://wiki.centos.org/HowTos/Xen/InstallingCentOSDomU?highlight=%28xen%29 it would be /srv/xen or even /var/lib/xen/images. ¿What is the correct absolute path to put into the xen domains files? Whatever you prefer, as long as the images have the correct security context. Otherwise, SELinux will deny access to the images. 2. Moreover, if you want the domU(s) boot together dom0, you should put the domains files (images) into /etc/xen/auto. ¿A simple symlink will be enough in this case? No, you shouldn't put the images there, but the (Xen) domain configuration files of the domains you would like to start during the boot process. -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Correct xen domains path
On Mon, 2007-06-18 at 11:07 -0400, Stephen Harris wrote: On Mon, Jun 18, 2007 at 11:05:24AM -0400, Rick Barnes wrote: My preference was to use /srv/xen and then symlink /srv/xen/etc to /etc/xen and /srv/xen/images to /var/lib/xen/images My preference is to disable SELinux totally and use /xen as a seperate mount point :-) I keep repeating in a sheepish fashion: bad :p. -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Correct xen domains path
On Mon, 2007-06-18 at 12:56 -0400, Stephen Harris wrote: The security rule of thumb here is that such machine _will_ be attacked, and so security in depth is the process to apply. There are far more attack vectors than just through network facing daemons. To name just one example, web browsers. Unfortunately, Firefox is not yet protected by the targeted policy. Hopefully that will happen one day. -- Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
